CVE-2026-50231

Lyrion Music Server 9.2.0 contains an unauthenticated stored cross-site scripting vulnerability in the log viewer that allows attackers to inject malicious scripts by exploiting unescaped template variables. Attackers can inject XSS payloads through search, lines, and path query parameters or by...

The vulnerability of the log-viewing function in the web interface for managing analytics and automation of cloud computing in Cisco Nexus Data Center Dashboard Insights allows a malicious actor to disclose protected information.

The vulnerability of the log-viewing function in the web interface for managing analytics and automation of cloud-based data center systems from Cisco Nexus Dashboard Insights relates to the disclosure of information through registration files. Exploiting this vulnerability allows a malicious act...

FusionPBX 安全漏洞

FusionPBX is a scalable, multi-threaded communications platform. The platform can be used as a call center server, fax server, VOIP server, voicemail server, conferencing server and voice application server. A security vulnerability exists in FusionPBX versions prior to 4.5.30, which stems from t...

PT-2021-23831 · Fusionpbx · Fusionpbx

Name of the Vulnerable Software and Affected Versions: FusionPBX versions prior to 4.5.30 Description: An issue was discovered in the log viewer.php Log View page, which allows an authenticated user to choose an arbitrary filename for download, not limited to the intended directory or the...

Security Bulletin: Log viewer vulnerability affects IBM Workload Deployer (CVE-2014-6190)

Summary Log viewer vulnerability affects IBM Workload Deployer. Vulnerability Details CVEID:CVE-2014-6190 DESCRIPTION: Defined system users without proper permissions can access the log viewer functionality by entering the log page URLs in their browser. CVSS Base Score: 5.0 CVSS Temporal Score:...

Security Bulletin: Log viewer vulnerability affects IBM PureApplication System (CVE-2014-6190)

Summary Log viewer vulnerability affects IBM PureApplication System. Vulnerability Details CVEID: CVE-2014-6190 DESCRIPTION: Defined system users without proper permissions can access the log viewer functionality by entering the log page URLs in their browser. CVSS Base Score: 5.0 CVSS Temporal...

tomcat examples XSS

Multiple cross-site scripting XSS vulnerabilities in Apache Geronimo 1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 time parameter to cal2.jsp and 2 any invalid parameter, which causes an XSS when the log file is viewed by the Web-Access-Log viewer...

CVE-2001-1101

The Log Viewer function in the Check Point FireWall-1 GUI for Solaris 3.0b through 4.1 SP2 does not check for the existence of '.log' files when saving files, which allows 1 remote authenticated users to overwrite arbitrary files ending in '.log', or 2 local users to overwrite arbitrary files via...